Primary

Context

Gematik Authenticator for Mac OS Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability has been identified in the Gematik Authenticator for Mac OS, affecting versions 4.12.0 prior to 4.16.0. This vulnerability is triggered when users open a malicious file, potentially allowing attackers to execute arbitrary code on the victim's system.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected Mac OS systems.

Remediation

Users are advised to update the Gematik Authenticator to version 4.16.0 or greater. The updated version can be downloaded from the GitHub releases page. Depending on the configuration, the authenticator may update automatically. To check the current version, open the application and look at the version displayed in the lower right corner of the window.

Added: Mar 27, 2026, 9:35 PM

Updated: Mar 27, 2026, 9:35 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.8

remediation

0.0

relevance

4.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.8

remediation

0.0

relevance

4.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Gematik Authenticator for Mac OS Remote Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating